[mcp-inspector] 🔍 MCP Inspector Report — 2026-06-22

[github-actions[bot]]

Summary

Metric	Count
Servers Inspected	28
HTTP	7
Container	14
Local (npx/uvx)	4
Special (delegate/CLI/safe-output)	3
Wildcard allowlist ⚠️	7
Require secrets	9
Status ✅	21
Status ⚠️	7

Inventory

Server	Type	Tools	Secrets	Status
jupyter	HTTP sidecar	5	None	✅
azure	Container	6	AZURE_* (3)	✅
fabric-rti	Local (uvx)	13	AZURE_* (3)	✅
brave-search	Container	2	BRAVE_API_KEY	⚠️ wildcard
memory	Container	4	None	✅
arxiv	Container	3	None	✅
deepwiki	HTTP	3	None	✅
datadog	HTTP	6	DD_API_KEY + DD_APPLICATION_KEY	✅
headroom	Container	3	None	✅
serena-go	Delegate	—	None	✅
sentrux	CLI-only ⚠️	—	None	⚠️ not MCP
serena	Container	dynamic	None	✅
slack	Safe-output	—	SLACK_BOT_TOKEN	✅
mempalace	HTTP local	19	None	✅
kreuzberg	Container	10	None	✅
semgrep	Container	6	None	✅
ast-grep	Container	?	None	⚠️ wildcard
context7	Container	2	CONTEXT7_API_KEY	✅
svelte	HTTP	5	None	✅
skillz	Container	dynamic	None	⚠️ wildcard
ruflo	Local (npx)	8	None	✅
tavily	HTTP	?	TAVILY_API_KEY	⚠️ wildcard
grafana	Container	7	GRAFANA_URL + GRAFANA_SERVICE_ACCOUNT_TOKEN	✅
notion	Container	4	NOTION_API_TOKEN	✅
sentry	Local (npx)	15	SENTRY_ACCESS_TOKEN	✅
microsoftdocs	HTTP	?	None	⚠️ wildcard
markitdown	Container	?	None	⚠️ wildcard
agentdb	Local (npx)	?	None	⚠️ wildcard+alpha

⚠️ Items Requiring Attention

1. tavily — wildcard allowlist, 2026-05-19 follow-up still open; inventory tools and add explicit list.
2. ast-grep — wildcard with undocumented tools; enumerate and restrict.
3. agentdb — @alpha package, wildcard; pin to stable version before broad adoption.
4. brave-search, skillz, markitdown — no image version pins; supply-chain risk.
5. sentrux — CLI-only binary install, no MCP server; misplaced in shared/mcp/; add clear header or move.
6. microsoftdocs / markitdown — add explicit allowlists once upstream tool names stabilize.

Recommendations

1. Audit Tavily and ast-grep tools; replace wildcards with explicit allowlists.
2. Upgrade agentdb from @alpha to a pinned stable release.
3. Pin container image versions for brave-search, skillz, ast-grep, markitdown.
4. Clarify sentrux.md is CLI-only (not MCP) or relocate to shared/setup/.
5. Add import-schema passthrough on serena-go.md so consumers know languages is required.

References:

• Workflow Run §27979514164
• Inspection data: /tmp/gh-aw/cache-memory/mcp-inspections/2026-06-22.json

Generated by 🔍 MCP Inspector Agent · 64.4 AIC · ⌖ 8.46 AIC · ⊞ 5.9K · ◷

• expires on Jun 23, 2026, 11:59 AM UTC-08:00

[github-actions[bot]]

Caution

agentic threat detected
Threat detection flagged this output in warn mode. Manual review is REQUIRED before any follow-up automation.

Details

Potential security threats were detected in the agent output.

Review the workflow run logs for details.

Stone bot wave. Smoke test hit tools. Build good. Some checks bad.

Warning

Firewall blocked 6 domains

The following domains were blocked by the firewall during workflow execution:

• accounts.google.com
• android.clients.google.com
• clients2.google.com
• contentautofill.googleapis.com
• safebrowsingohttpgateway.googleapis.com
• www.google.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "accounts.google.com"
    - "android.clients.google.com"
    - "clients2.google.com"
    - "contentautofill.googleapis.com"
    - "safebrowsingohttpgateway.googleapis.com"
    - "www.google.com"

See Network Configuration for more information.

📰 BREAKING: Report filed by Smoke Copilot · 429 AIC · ⌖ 13.7 AIC · ⊞ 19.2K · ◷

[github-actions[bot]]

This discussion was automatically closed because it expired on 2026-06-23T19:59:27.041Z.

Closed by Workflow